Privacy Policy
Your privacy and confidentiality are fundamental to our professional relationship. This policy outlines how we collect, use, and protect your personal information.
Last updated: 8/5/2025
Personal Information
- Name, address, phone number, and email address
- Date of birth and emergency contact information
- NDIS participant number and plan details
- Medical and disability-related information relevant to support provision
Support Information
- Goals, preferences, and support requirements
- Progress notes and service delivery records
- Communication records and incident reports
- To provide personalised NDIS support services
- To develop and implement your support plans
- To communicate with you about your services
- To comply with NDIS reporting requirements
- To ensure your safety and wellbeing
- To improve our services and support quality
Security Measures
- Secure storage of physical and electronic records
- Password-protected systems and encrypted communications
- Limited access to authorised personnel only
- Regular security reviews and updates
Confidentiality
All personal information is treated as strictly confidential. Information is only shared with your explicit consent or as required by law, NDIS regulations, or in emergency situations where your safety is at risk.
With Your Consent
- Healthcare providers and allied health professionals
- Family members or nominated representatives
- Other support providers in your team
Legal Requirements
- NDIS Quality and Safeguards Commission reporting
- Mandatory reporting obligations
- Court orders or legal proceedings
- Emergency situations involving immediate risk
Under Australian Privacy Principles, you have the right to:
- Access your personal information
- Request corrections to inaccurate information
- Withdraw consent for information sharing
- Request deletion of information (subject to legal requirements)
- Make a complaint about privacy breaches
Records are retained in accordance with NDIS requirements and Australian privacy laws. Personal information is securely destroyed when no longer required, typically 7 years after service completion, unless ongoing legal obligations require longer retention.
If you have questions about this privacy policy or wish to exercise your privacy rights, please contact:
This privacy policy may be updated from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes and obtain your consent where required by law.